helium-3rd-party/meta-openembedded
1
0
Fork 0
mirror of git://git.openembedded.org/meta-openembedded synced 2026-04-02 02:49:12 +00:00
Code Issues Packages Projects Releases Wiki Activity

mbedtls: upgrade 2.28.4 -> 2.28.7

Browse Source 
Includes security fixes for:
CVE-2023-43615 - Buffer overread in TLS stream cipher suites
CVE-2024-23170 - Timing side channel in private key RSA operations
CVE-2024-23775 - Buffer overflow in mbedtls_x509_set_extension()

Other changes:
https://github.com/Mbed-TLS/mbedtls/releases/tag/mbedtls-2.28.5

License updated to dual Apache-2.0 OR GPL-2.0-or-later.

Signed-off-by: Beniamin Sandu <beniaminsandu@gmail.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
This commit is contained in:
Beniamin Sandu 2024-02-05 22:40:43 +00:00 committed by Khem Raj
parent b1e57692e0
commit f51fe152e8
No known key found for this signature in database
GPG Key ID: BB053355919D3314
1 changed files with 3 additions and 3 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
meta-networking/recipes-connectivity/mbedtls/mbedtls_2.28.4.bb → meta-networking/recipes-connectivity/mbedtls/mbedtls_2.28.7.bb
View File

@ -17,13 +17,13 @@ understand what the code does. It features: \
HOMEPAGE = "https://tls.mbed.org/"
LICENSE = "Apache-2.0"
LIC_FILES_CHKSUM = "file://LICENSE;md5=3b83ef96387f14655fc854ddc3c6bd57"
LICENSE = "Apache-2.0 | GPL-2.0-or-later"
LIC_FILES_CHKSUM = "file://LICENSE;md5=379d5819937a6c2f1ef1630d341e026d"
SECTION = "libs"
S = "${WORKDIR}/git"
SRCREV = "aeb97a18913a86f051afab11b2c92c6be0c2eb83"
SRCREV = "555f84735aecdbd76a566cf087ec8425dfb0c8ab"
SRC_URI = "git://github.com/ARMmbed/mbedtls.git;protocol=https;branch=mbedtls-2.28 \
file://run-ptest \
"